Curso de Pentesting

Temario del curso

• Evaluación de Vulnerabilidad
• Webshag
• Skipfish
• Owasp-zap
• Websploit
• w3af
• MitM Proxy
• Host Scanning
• Brute Force
• Pwdump and Fgdump
• Windows Credential Editor
• Password Profiling
• Password Mutating
• Online Password Attacks
• Hydra, Medusa, and Ncrack
• Password Hash Attacks
• Password Hashes
• Password Cracking
• John the Ripper
• Rainbow Tables
• Passing the Hash in Windows
• Metasploit Database Access
• Metasploit Payloads
• Meterpreter Payloads
• Experimenting with Meterpreter
• Reverse HTTPS Meterpreter
• Metasploit Exploit Multi Handler
• Revisiting Client Side Attacks
• Building Your Own MSF Module
• Post Exploitation with Metasploit
• Cross Site Scripting
• Stealing Cookies and Session Information
• Browser Redirection and IFRAME Injection
• File Inclusion Vulnerabilities
• Remote File Inclusion
• MySQL SQL Injection
• Authentication Bypass
• Enumerating the Database
• Column Number Enumeration
• Understanding the Layout of the Output
• Leveraging SQL Injection for Code Execution
• Web Application Proxies
• Automated SQL Injection Tools